CVE-2022-27527
Description
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files. It was fixed in PDFTron earlier than 9.0.7 version in Autodesk Navisworks 2022, and 2020.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.068
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2019 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2020 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2021 | Windows |
| Multiple Vulnerabilities are affected in Autodesk Navisworks Simulate 2022 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234